Support for CIP Cyber Security Standards

  • 02 Sep 2015 17:44

White paper on the how Symmetry supports the Critical Infrastructure Protection Cyber Security Standards

The Symmetry Security Management System is a Physical Access Control System (PACS) and a significant component of the physical security measures used to secure the physical perimeter. This represents but one small part of the regulations imposed on the critical infrastructure that makes up the Bulk Electric Power System (BES) in North America. Symmetry conforms to the CIP requirements and can be used to further the efforts of BES producers and suppliers in documenting compliance.

Executive Summary

The North American Electric Reliability Corporation (NERC) has as its mission to ensure the reliability of the bulk power system in North America. NERC is a self-regulatory organization, subject to oversight by the U.S. Federal Energy Regulatory Commission (FERC) and governmental authorities in Canada. NERC develops, releases and maintains Critical Infrastructure Protection (CIP) Cyber Security Standards. Presently these cover the following topics:

  • Critical Cyber Asset Identification
  • Security Management Controls
  • Personnel and Training
  • Electronic Security Perimeter(s)
  • Physical Security
  • Systems Security Management
  • Incident Reporting and Response Planning
  • Recovery Plans for Critical Cyber Assets.

The physical access control system (PACS) is a major component of the physical security measures used to secure the physical perimeter. The PACS runs on cyber assets (servers and workstations) and relies on the network architecture for communications. Therefore, the PACS is not only a system that must be identified for protection (as a non-critical cyber asset) but is also integral in the solution developed by the Responsible Entity for protecting Critical Cyber Assets.

Download the full white paper: Support for CIP